1. Packages
  2. Google Cloud Native
  3. API Docs
  4. networkservices
  5. networkservices/v1
  6. EndpointPolicy

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.networkservices/v1.EndpointPolicy

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Creates a new EndpointPolicy in a given project and location.

    Create EndpointPolicy Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new EndpointPolicy(name: string, args: EndpointPolicyArgs, opts?: CustomResourceOptions);
    @overload
    def EndpointPolicy(resource_name: str,
                       args: EndpointPolicyArgs,
                       opts: Optional[ResourceOptions] = None)
    
    @overload
    def EndpointPolicy(resource_name: str,
                       opts: Optional[ResourceOptions] = None,
                       endpoint_matcher: Optional[EndpointMatcherArgs] = None,
                       endpoint_policy_id: Optional[str] = None,
                       type: Optional[EndpointPolicyType] = None,
                       authorization_policy: Optional[str] = None,
                       client_tls_policy: Optional[str] = None,
                       description: Optional[str] = None,
                       labels: Optional[Mapping[str, str]] = None,
                       location: Optional[str] = None,
                       name: Optional[str] = None,
                       project: Optional[str] = None,
                       server_tls_policy: Optional[str] = None,
                       traffic_port_selector: Optional[TrafficPortSelectorArgs] = None)
    func NewEndpointPolicy(ctx *Context, name string, args EndpointPolicyArgs, opts ...ResourceOption) (*EndpointPolicy, error)
    public EndpointPolicy(string name, EndpointPolicyArgs args, CustomResourceOptions? opts = null)
    public EndpointPolicy(String name, EndpointPolicyArgs args)
    public EndpointPolicy(String name, EndpointPolicyArgs args, CustomResourceOptions options)
    
    type: google-native:networkservices/v1:EndpointPolicy
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args EndpointPolicyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args EndpointPolicyArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args EndpointPolicyArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args EndpointPolicyArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args EndpointPolicyArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Example

    The following reference example uses placeholder values for all input properties.

    var endpointPolicyResource = new GoogleNative.NetworkServices.V1.EndpointPolicy("endpointPolicyResource", new()
    {
        EndpointMatcher = new GoogleNative.NetworkServices.V1.Inputs.EndpointMatcherArgs
        {
            MetadataLabelMatcher = new GoogleNative.NetworkServices.V1.Inputs.EndpointMatcherMetadataLabelMatcherArgs
            {
                MetadataLabelMatchCriteria = GoogleNative.NetworkServices.V1.EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria.MetadataLabelMatchCriteriaUnspecified,
                MetadataLabels = new[]
                {
                    new GoogleNative.NetworkServices.V1.Inputs.EndpointMatcherMetadataLabelMatcherMetadataLabelsArgs
                    {
                        LabelName = "string",
                        LabelValue = "string",
                    },
                },
            },
        },
        EndpointPolicyId = "string",
        Type = GoogleNative.NetworkServices.V1.EndpointPolicyType.EndpointPolicyTypeUnspecified,
        AuthorizationPolicy = "string",
        ClientTlsPolicy = "string",
        Description = "string",
        Labels = 
        {
            { "string", "string" },
        },
        Location = "string",
        Name = "string",
        Project = "string",
        ServerTlsPolicy = "string",
        TrafficPortSelector = new GoogleNative.NetworkServices.V1.Inputs.TrafficPortSelectorArgs
        {
            Ports = new[]
            {
                "string",
            },
        },
    });
    
    example, err := networkservices.NewEndpointPolicy(ctx, "endpointPolicyResource", &networkservices.EndpointPolicyArgs{
    EndpointMatcher: &networkservices.EndpointMatcherArgs{
    MetadataLabelMatcher: &networkservices.EndpointMatcherMetadataLabelMatcherArgs{
    MetadataLabelMatchCriteria: networkservices.EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteriaMetadataLabelMatchCriteriaUnspecified,
    MetadataLabels: networkservices.EndpointMatcherMetadataLabelMatcherMetadataLabelsArray{
    &networkservices.EndpointMatcherMetadataLabelMatcherMetadataLabelsArgs{
    LabelName: pulumi.String("string"),
    LabelValue: pulumi.String("string"),
    },
    },
    },
    },
    EndpointPolicyId: pulumi.String("string"),
    Type: networkservices.EndpointPolicyTypeEndpointPolicyTypeUnspecified,
    AuthorizationPolicy: pulumi.String("string"),
    ClientTlsPolicy: pulumi.String("string"),
    Description: pulumi.String("string"),
    Labels: pulumi.StringMap{
    "string": pulumi.String("string"),
    },
    Location: pulumi.String("string"),
    Name: pulumi.String("string"),
    Project: pulumi.String("string"),
    ServerTlsPolicy: pulumi.String("string"),
    TrafficPortSelector: &networkservices.TrafficPortSelectorArgs{
    Ports: pulumi.StringArray{
    pulumi.String("string"),
    },
    },
    })
    
    var endpointPolicyResource = new EndpointPolicy("endpointPolicyResource", EndpointPolicyArgs.builder()
        .endpointMatcher(EndpointMatcherArgs.builder()
            .metadataLabelMatcher(EndpointMatcherMetadataLabelMatcherArgs.builder()
                .metadataLabelMatchCriteria("METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED")
                .metadataLabels(EndpointMatcherMetadataLabelMatcherMetadataLabelsArgs.builder()
                    .labelName("string")
                    .labelValue("string")
                    .build())
                .build())
            .build())
        .endpointPolicyId("string")
        .type("ENDPOINT_POLICY_TYPE_UNSPECIFIED")
        .authorizationPolicy("string")
        .clientTlsPolicy("string")
        .description("string")
        .labels(Map.of("string", "string"))
        .location("string")
        .name("string")
        .project("string")
        .serverTlsPolicy("string")
        .trafficPortSelector(TrafficPortSelectorArgs.builder()
            .ports("string")
            .build())
        .build());
    
    endpoint_policy_resource = google_native.networkservices.v1.EndpointPolicy("endpointPolicyResource",
        endpoint_matcher=google_native.networkservices.v1.EndpointMatcherArgs(
            metadata_label_matcher=google_native.networkservices.v1.EndpointMatcherMetadataLabelMatcherArgs(
                metadata_label_match_criteria=google_native.networkservices.v1.EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria.METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED,
                metadata_labels=[google_native.networkservices.v1.EndpointMatcherMetadataLabelMatcherMetadataLabelsArgs(
                    label_name="string",
                    label_value="string",
                )],
            ),
        ),
        endpoint_policy_id="string",
        type=google_native.networkservices.v1.EndpointPolicyType.ENDPOINT_POLICY_TYPE_UNSPECIFIED,
        authorization_policy="string",
        client_tls_policy="string",
        description="string",
        labels={
            "string": "string",
        },
        location="string",
        name="string",
        project="string",
        server_tls_policy="string",
        traffic_port_selector=google_native.networkservices.v1.TrafficPortSelectorArgs(
            ports=["string"],
        ))
    
    const endpointPolicyResource = new google_native.networkservices.v1.EndpointPolicy("endpointPolicyResource", {
        endpointMatcher: {
            metadataLabelMatcher: {
                metadataLabelMatchCriteria: google_native.networkservices.v1.EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria.MetadataLabelMatchCriteriaUnspecified,
                metadataLabels: [{
                    labelName: "string",
                    labelValue: "string",
                }],
            },
        },
        endpointPolicyId: "string",
        type: google_native.networkservices.v1.EndpointPolicyType.EndpointPolicyTypeUnspecified,
        authorizationPolicy: "string",
        clientTlsPolicy: "string",
        description: "string",
        labels: {
            string: "string",
        },
        location: "string",
        name: "string",
        project: "string",
        serverTlsPolicy: "string",
        trafficPortSelector: {
            ports: ["string"],
        },
    });
    
    type: google-native:networkservices/v1:EndpointPolicy
    properties:
        authorizationPolicy: string
        clientTlsPolicy: string
        description: string
        endpointMatcher:
            metadataLabelMatcher:
                metadataLabelMatchCriteria: METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED
                metadataLabels:
                    - labelName: string
                      labelValue: string
        endpointPolicyId: string
        labels:
            string: string
        location: string
        name: string
        project: string
        serverTlsPolicy: string
        trafficPortSelector:
            ports:
                - string
        type: ENDPOINT_POLICY_TYPE_UNSPECIFIED
    

    EndpointPolicy Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The EndpointPolicy resource accepts the following input properties:

    EndpointMatcher Pulumi.GoogleNative.NetworkServices.V1.Inputs.EndpointMatcher
    A matcher that selects endpoints to which the policies should be applied.
    EndpointPolicyId string
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    Type Pulumi.GoogleNative.NetworkServices.V1.EndpointPolicyType
    The type of endpoint policy. This is primarily used to validate the configuration.
    AuthorizationPolicy string
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    ClientTlsPolicy string
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    Description string
    Optional. A free-text description of the resource. Max length 1024 characters.
    Labels Dictionary<string, string>
    Optional. Set of label tags associated with the EndpointPolicy resource.
    Location string
    Name string
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    Project string
    ServerTlsPolicy string
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    TrafficPortSelector Pulumi.GoogleNative.NetworkServices.V1.Inputs.TrafficPortSelector
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
    EndpointMatcher EndpointMatcherArgs
    A matcher that selects endpoints to which the policies should be applied.
    EndpointPolicyId string
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    Type EndpointPolicyType
    The type of endpoint policy. This is primarily used to validate the configuration.
    AuthorizationPolicy string
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    ClientTlsPolicy string
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    Description string
    Optional. A free-text description of the resource. Max length 1024 characters.
    Labels map[string]string
    Optional. Set of label tags associated with the EndpointPolicy resource.
    Location string
    Name string
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    Project string
    ServerTlsPolicy string
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    TrafficPortSelector TrafficPortSelectorArgs
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
    endpointMatcher EndpointMatcher
    A matcher that selects endpoints to which the policies should be applied.
    endpointPolicyId String
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    type EndpointPolicyType
    The type of endpoint policy. This is primarily used to validate the configuration.
    authorizationPolicy String
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    clientTlsPolicy String
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    description String
    Optional. A free-text description of the resource. Max length 1024 characters.
    labels Map<String,String>
    Optional. Set of label tags associated with the EndpointPolicy resource.
    location String
    name String
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    project String
    serverTlsPolicy String
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    trafficPortSelector TrafficPortSelector
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
    endpointMatcher EndpointMatcher
    A matcher that selects endpoints to which the policies should be applied.
    endpointPolicyId string
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    type EndpointPolicyType
    The type of endpoint policy. This is primarily used to validate the configuration.
    authorizationPolicy string
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    clientTlsPolicy string
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    description string
    Optional. A free-text description of the resource. Max length 1024 characters.
    labels {[key: string]: string}
    Optional. Set of label tags associated with the EndpointPolicy resource.
    location string
    name string
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    project string
    serverTlsPolicy string
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    trafficPortSelector TrafficPortSelector
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
    endpoint_matcher EndpointMatcherArgs
    A matcher that selects endpoints to which the policies should be applied.
    endpoint_policy_id str
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    type EndpointPolicyType
    The type of endpoint policy. This is primarily used to validate the configuration.
    authorization_policy str
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    client_tls_policy str
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    description str
    Optional. A free-text description of the resource. Max length 1024 characters.
    labels Mapping[str, str]
    Optional. Set of label tags associated with the EndpointPolicy resource.
    location str
    name str
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    project str
    server_tls_policy str
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    traffic_port_selector TrafficPortSelectorArgs
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.
    endpointMatcher Property Map
    A matcher that selects endpoints to which the policies should be applied.
    endpointPolicyId String
    Required. Short name of the EndpointPolicy resource to be created. E.g. "CustomECS".
    type "ENDPOINT_POLICY_TYPE_UNSPECIFIED" | "SIDECAR_PROXY" | "GRPC_SERVER"
    The type of endpoint policy. This is primarily used to validate the configuration.
    authorizationPolicy String
    Optional. This field specifies the URL of AuthorizationPolicy resource that applies authorization policies to the inbound traffic at the matched endpoints. Refer to Authorization. If this field is not specified, authorization is disabled(no authz checks) for this endpoint.
    clientTlsPolicy String
    Optional. A URL referring to a ClientTlsPolicy resource. ClientTlsPolicy can be set to specify the authentication for traffic from the proxy to the actual endpoints. More specifically, it is applied to the outgoing traffic from the proxy to the endpoint. This is typically used for sidecar model where the proxy identifies itself as endpoint to the control plane, with the connection between sidecar and endpoint requiring authentication. If this field is not set, authentication is disabled(open). Applicable only when EndpointPolicyType is SIDECAR_PROXY.
    description String
    Optional. A free-text description of the resource. Max length 1024 characters.
    labels Map<String>
    Optional. Set of label tags associated with the EndpointPolicy resource.
    location String
    name String
    Name of the EndpointPolicy resource. It matches pattern projects/{project}/locations/global/endpointPolicies/{endpoint_policy}.
    project String
    serverTlsPolicy String
    Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.
    trafficPortSelector Property Map
    Optional. Port selector for the (matched) endpoints. If no port selector is provided, the matched config is applied to all ports.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the EndpointPolicy resource produces the following output properties:

    CreateTime string
    The timestamp when the resource was created.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    The timestamp when the resource was updated.
    CreateTime string
    The timestamp when the resource was created.
    Id string
    The provider-assigned unique ID for this managed resource.
    UpdateTime string
    The timestamp when the resource was updated.
    createTime String
    The timestamp when the resource was created.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    The timestamp when the resource was updated.
    createTime string
    The timestamp when the resource was created.
    id string
    The provider-assigned unique ID for this managed resource.
    updateTime string
    The timestamp when the resource was updated.
    create_time str
    The timestamp when the resource was created.
    id str
    The provider-assigned unique ID for this managed resource.
    update_time str
    The timestamp when the resource was updated.
    createTime String
    The timestamp when the resource was created.
    id String
    The provider-assigned unique ID for this managed resource.
    updateTime String
    The timestamp when the resource was updated.

    Supporting Types

    EndpointMatcher, EndpointMatcherArgs

    MetadataLabelMatcher EndpointMatcherMetadataLabelMatcher
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher EndpointMatcherMetadataLabelMatcher
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher EndpointMatcherMetadataLabelMatcher
    The matcher is based on node metadata presented by xDS clients.
    metadata_label_matcher EndpointMatcherMetadataLabelMatcher
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher Property Map
    The matcher is based on node metadata presented by xDS clients.

    EndpointMatcherMetadataLabelMatcher, EndpointMatcherMetadataLabelMatcherArgs

    MetadataLabelMatchCriteria Pulumi.GoogleNative.NetworkServices.V1.EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    MetadataLabels List<Pulumi.GoogleNative.NetworkServices.V1.Inputs.EndpointMatcherMetadataLabelMatcherMetadataLabels>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    MetadataLabelMatchCriteria EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    MetadataLabels []EndpointMatcherMetadataLabelMatcherMetadataLabels
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels List<EndpointMatcherMetadataLabelMatcherMetadataLabels>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels EndpointMatcherMetadataLabelMatcherMetadataLabels[]
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadata_label_match_criteria EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadata_labels Sequence[EndpointMatcherMetadataLabelMatcherMetadataLabels]
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria "METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED" | "MATCH_ANY" | "MATCH_ALL"
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels List<Property Map>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).

    EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteria, EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteriaArgs

    MetadataLabelMatchCriteriaUnspecified
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    MatchAny
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    MatchAll
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.
    EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteriaMetadataLabelMatchCriteriaUnspecified
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteriaMatchAny
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    EndpointMatcherMetadataLabelMatcherMetadataLabelMatchCriteriaMatchAll
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.
    MetadataLabelMatchCriteriaUnspecified
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    MatchAny
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    MatchAll
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.
    MetadataLabelMatchCriteriaUnspecified
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    MatchAny
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    MatchAll
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    MATCH_ANY
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    MATCH_ALL
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.
    "METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIED"
    METADATA_LABEL_MATCH_CRITERIA_UNSPECIFIEDDefault value. Should not be used.
    "MATCH_ANY"
    MATCH_ANYAt least one of the Labels specified in the matcher should match the metadata presented by xDS client.
    "MATCH_ALL"
    MATCH_ALLThe metadata presented by the xDS client should contain all of the labels specified here.

    EndpointMatcherMetadataLabelMatcherMetadataLabels, EndpointMatcherMetadataLabelMatcherMetadataLabelsArgs

    LabelName string
    Label name presented as key in xDS Node Metadata.
    LabelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    LabelName string
    Label name presented as key in xDS Node Metadata.
    LabelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName String
    Label name presented as key in xDS Node Metadata.
    labelValue String
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName string
    Label name presented as key in xDS Node Metadata.
    labelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    label_name str
    Label name presented as key in xDS Node Metadata.
    label_value str
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName String
    Label name presented as key in xDS Node Metadata.
    labelValue String
    Label value presented as value corresponding to the above key, in xDS Node Metadata.

    EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse, EndpointMatcherMetadataLabelMatcherMetadataLabelsResponseArgs

    LabelName string
    Label name presented as key in xDS Node Metadata.
    LabelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    LabelName string
    Label name presented as key in xDS Node Metadata.
    LabelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName String
    Label name presented as key in xDS Node Metadata.
    labelValue String
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName string
    Label name presented as key in xDS Node Metadata.
    labelValue string
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    label_name str
    Label name presented as key in xDS Node Metadata.
    label_value str
    Label value presented as value corresponding to the above key, in xDS Node Metadata.
    labelName String
    Label name presented as key in xDS Node Metadata.
    labelValue String
    Label value presented as value corresponding to the above key, in xDS Node Metadata.

    EndpointMatcherMetadataLabelMatcherResponse, EndpointMatcherMetadataLabelMatcherResponseArgs

    MetadataLabelMatchCriteria string
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    MetadataLabels List<Pulumi.GoogleNative.NetworkServices.V1.Inputs.EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    MetadataLabelMatchCriteria string
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    MetadataLabels []EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria String
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels List<EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria string
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse[]
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadata_label_match_criteria str
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadata_labels Sequence[EndpointMatcherMetadataLabelMatcherMetadataLabelsResponse]
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).
    metadataLabelMatchCriteria String
    Specifies how matching should be done. Supported values are: MATCH_ANY: At least one of the Labels specified in the matcher should match the metadata presented by xDS client. MATCH_ALL: The metadata presented by the xDS client should contain all of the labels specified here. The selection is determined based on the best match. For example, suppose there are three EndpointPolicy resources P1, P2 and P3 and if P1 has a the matcher as MATCH_ANY , P2 has MATCH_ALL , and P3 has MATCH_ALL . If a client with label connects, the config from P1 will be selected. If a client with label connects, the config from P2 will be selected. If a client with label connects, the config from P3 will be selected. If there is more than one best match, (for example, if a config P4 with selector exists and if a client with label connects), an error will be thrown.
    metadataLabels List<Property Map>
    The list of label value pairs that must match labels in the provided metadata based on filterMatchCriteria This list can have at most 64 entries. The list can be empty if the match criteria is MATCH_ANY, to specify a wildcard match (i.e this matches any client).

    EndpointMatcherResponse, EndpointMatcherResponseArgs

    MetadataLabelMatcher EndpointMatcherMetadataLabelMatcherResponse
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher EndpointMatcherMetadataLabelMatcherResponse
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher EndpointMatcherMetadataLabelMatcherResponse
    The matcher is based on node metadata presented by xDS clients.
    metadata_label_matcher EndpointMatcherMetadataLabelMatcherResponse
    The matcher is based on node metadata presented by xDS clients.
    metadataLabelMatcher Property Map
    The matcher is based on node metadata presented by xDS clients.

    EndpointPolicyType, EndpointPolicyTypeArgs

    EndpointPolicyTypeUnspecified
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    SidecarProxy
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    GrpcServer
    GRPC_SERVERRepresents a proxyless gRPC backend.
    EndpointPolicyTypeEndpointPolicyTypeUnspecified
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    EndpointPolicyTypeSidecarProxy
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    EndpointPolicyTypeGrpcServer
    GRPC_SERVERRepresents a proxyless gRPC backend.
    EndpointPolicyTypeUnspecified
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    SidecarProxy
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    GrpcServer
    GRPC_SERVERRepresents a proxyless gRPC backend.
    EndpointPolicyTypeUnspecified
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    SidecarProxy
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    GrpcServer
    GRPC_SERVERRepresents a proxyless gRPC backend.
    ENDPOINT_POLICY_TYPE_UNSPECIFIED
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    SIDECAR_PROXY
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    GRPC_SERVER
    GRPC_SERVERRepresents a proxyless gRPC backend.
    "ENDPOINT_POLICY_TYPE_UNSPECIFIED"
    ENDPOINT_POLICY_TYPE_UNSPECIFIEDDefault value. Must not be used.
    "SIDECAR_PROXY"
    SIDECAR_PROXYRepresents a proxy deployed as a sidecar.
    "GRPC_SERVER"
    GRPC_SERVERRepresents a proxyless gRPC backend.

    TrafficPortSelector, TrafficPortSelectorArgs

    Ports List<string>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    Ports []string
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports List<String>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports string[]
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports Sequence[str]
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports List<String>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.

    TrafficPortSelectorResponse, TrafficPortSelectorResponseArgs

    Ports List<string>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    Ports []string
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports List<String>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports string[]
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports Sequence[str]
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.
    ports List<String>
    Optional. A list of ports. Can be port numbers or port range (example, [80-90] specifies all ports from 80 to 90, including 80 and 90) or named ports or * to specify all ports. If the list is empty, all ports are selected.

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi